Richard N. Velotta reports: The Federal Trade Commission’s dispute with MGM Resorts International over providing information about 2023’s costly cyberattack against the company may be coming to a resolution. The FTC has told MGM it plans to withdraw its civil investigative demand regarding the incident that cost the company an estimated $100 million and crippled the company’s…
Category: Malware
Info accessed in Rainbow board data breach ‘deleted and has not been shared’
Sudbury.com reports: Data acquired by unauthorized individuals during Rainbow District School Board’s recent cyber incident “was deleted and has not been shared,” according to an update on the situation from the school board. The school board also said in the Feb. 28 statement that three weeks after the cyber incident, which meant internet was unavailable…
Black Basta exposed: A look at a cybercrime data leak and a key member, “Tramp”
Intel471 reports: On Feb. 11, 2025, a mysterious leaker going by the Telegram username ExploitWhispers released one year’s worth of internal communications between members of the Black Basta ransomware group on a Telegram channel. Black Basta is still active in a reduced capacity, but in 2022, it was the third most impactful ransomware group. Its members appeared to be experienced…
Ransomware attack on Southern Water cost £4.5 million
Penny Horwood reports: The ransomware attack on Southern Water approximately one year ago by the Russia-linked Black Basta group has cost the utility provider more than £4.5 million to date, according to the utility company’s annual report. An extract from the publicly available Southern Water annual report says: “..in February 2024 we announced that data from a limited part…
DISA Global Solutions reports more than 3.3 million people affected by 2024 data breach, but questions remain
On February 3, DataBreaches quoted a press release by BakerHostetler about a breach update from DISA Global Solutions that DISA had issued on January 23, 2025. BakerHostetler’s release was subsequently removed from their website, although a copy still currently exists at PublicNow. Of note, in their main takeaways section, BakerHostetler quoted DISA’s update and commented:…
RansomHub sends a letter to the editor. Really.
On February 17, DataBreaches reported that the RansomHub ransomware group claimed responsibility for an attack on the Sault Ste. Marie Tribe of Chippewa Indians. RansomHub claimed to have “temporarily locked” the tribe’s infrastructure and to have acquired 119 GB of files (501, 211 files). The post included statements by RansomHub as seen on their dark…